default DNS caching name server on Fedora ?

Kevin Fenzi kevin at
Wed Jun 20 16:01:45 UTC 2012

On Wed, 20 Jun 2012 11:47:17 -0400
Simo Sorce <simo at> wrote:

> Ok, I guess this topic has been brought up before, but I think some
> things changed recently that would warrant seriously considering
> adding a default caching name server in fedora installs.


> Discuss.

You can already (all be it somewhat manually) do this with

yum install dnssec-trigger

reboot or: 

  /bin/systemctl restart dnssec-triggerd.service
  /bin/systemctl restart dnssec-triggerd-keygen.service

Connect your vpn, etc. 

Then tell unbound what you want it to do: 

unbound-control forward_add x.x.x.x y.y.y.y
unbound-control forward_add yourdomain z.z.z.z

(unbound-control gives you a lot of control, you can flush cache, setup
forward, see it's man page or help for all the options). 

I'm not sure how hard/possible it is for dnssec-trigger to get this
info from the vpn/NM and just set it for you. 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <>

More information about the devel mailing list